var createError = require('http-errors');
var express = require('express');
var path = require('path');
var cookieParser = require('cookie-parser');
var logger = require('morgan');

var indexRouter = require('./routes/index');
var usersRouter = require('./routes/users');
var upload = require('./routes/upload')
var qiniu  =require('./routes/qiniu')
var shop  =require('./routes/shop')
var wechat  =require('./routes/weChat')


var app = express();
// 导入校验token的模块, 解析JWT字符串, 还原成 JSON 对象 的模块

const parseJwt = require('express-jwt')

const SECRET_KEY = 'login2021' // 与生成token的密钥要一致!

// 1. 使用中间件解析token
// 2. 使用 .unless 排除无需校验的路由(比如: 登录)
app.use(
  parseJwt({
      secret: SECRET_KEY,
      algorithms: ['HS256'], // 使用何种加密算法解析
  })
    .unless({ path: ['/student/login','/student/reg','/public','/shop/info',/^\/images\//] }) // 登录页无需校验
)
app.use('/images', express.static(path.join(__dirname, 'public/images')));


const errorHandler = require('./middleware/errorhandler'); // 注意这里的路径是相对于app.js的相对路径

// 错误中间件写在最后
app.use(errorHandler);

//使用cors

// view engine setup
app.set('views', path.join(__dirname, 'views'));
app.set('view engine', 'jade');

app.use(logger('dev'));
app.use(express.json());
app.use(express.urlencoded({ extended: false }));
app.use(cookieParser());
app.use(express.static(path.join(__dirname, 'public')));

app.use('/', indexRouter);
app.use('/users', usersRouter);
app.use('/upload',upload);
app.use('/qiniu',qiniu)
app.use('/shop',shop)
app.use('/wechat',wechat)

// catch 404 and forward to error handler
app.use(function(req, res, next) {
  next(createError(404));
});

// error handler
app.use(function(err, req, res, next) {
  // set locals, only providing error in development
  res.locals.message = err.message;
  res.locals.error = req.app.get('env') === 'development' ? err : {};

  // render the error page
  res.status(err.status || 500);
  res.render('error');
});
module.exports = app;
